What could be the effect of DNS scavenging on Domain Computers that are turned off for a while?


I am confused about the following scenario, maybe it's stupid but still I need to ask :)


Employees go on vacations all the time. What if any employee went on vacation for 20 days and turned off his computer. Now, if DNS scavenging is enabled on DNS, his computer's A record will be deleted and DHCP will also expire the lease. So, when he will turn on his computer, will he be able to logon or it will show an error that unknown domain or any symptom that machine is not on domain?
Who is Participating?

[Product update] Infrastructure Analysis Tool is now available with Business Accounts.Learn More

I wear a lot of hats...

"The solutions and answers provided on Experts Exchange have been extremely helpful to me over the last few years. I wear a lot of hats - Developer, Database Administrator, Help Desk, etc., so I know a lot of things but not a lot about one thing. Experts Exchange gives me answers from people who do know a lot about one thing, in a easy to use platform." -Todd S.

The only issue with long vacations has nothing to do with DHCP/DNS as upon connection to the LAN, the system will send out a DHCP discovery/request and will be assigned an IP that either the DHCP server will register in DNS or the client will.

The extended duration of system being off deals with AD tombstone where the ADmdomain trust could be lost/expire.
Kini pradeepDevelopment ManagerCommented:
I agree with Arnold on the above for the DHCP IP lease and that once the user comes back on the network a new Lease is provided and the same should be updated on DNS. However what happens to the Active directory machine account password is interesting. Every domain member computer changes its password in active directory by default in 30 days, however if this is client initiated and i would differ on the Tombstone (not applicable) part. If a machine has not contacted the AD in say 30 days ideally the machine account password should not change, however in certain cases the secure channel between the computer and the Domain controller might get broken, removing and adding the workstation from the domain should fix this.

The ref blog from the MS directory service team addresses the Questions on Machine account password changes

Experts Exchange Solution brought to you by

Your issues matter to us.

Facing a tech roadblock? Get the help and guidance you need from experienced professionals who care. Ask your question anytime, anywhere, with no hassle.

Start your 7-day free trial
It's more than this solution.Get answers and train to solve all your tech problems - anytime, anywhere.Try it for free Edge Out The Competitionfor your dream job with proven skills and certifications.Get started today Stand Outas the employee with proven skills.Start learning today for free Move Your Career Forwardwith certification training in the latest technologies.Start your trial today
Windows Server 2008

From novice to tech pro — start learning today.